Description

PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote attackers to obtain sensitive information via the OWA_UTIL stored procedures (1) OWA_UTIL.signature, (2) OWA_UTIL.listprint, or (3) OWA_UTIL.show_query_columns.

Remediation

References

CVE-2002-0560

Related Vulnerabilities

WordPress Plugin WP Visitor Statistics (Real Time Traffic) SQL Injection (6.8.1)

SugarCRM Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability (CVE-2019-17315)

Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8656)

WordPress 4.7.x Prototype Pollution (4.7 - 4.7.22)

phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9853)

Severity

Medium

Classification

CVE-2002-0560

Tags

Missing Update Known Vulnerabilities